Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2021
Exécuté par jenny (administrateur) sur JENNY-PC (Hewlett-Packard HP Pavilion g6 Notebook PC) (22-08-2021 14:13:12)
Exécuté depuis C:\Users\jenny\Downloads
Profils chargés: jenny
Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Users\jenny\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) [Fichier non signé] C:\Users\jenny\Adobe Version Cue CS2\bin\VersionCueCS2.exe
(Adobe Sytems Incorporated) [Fichier non signé] C:\Users\jenny\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Driver Updater\DriverUpdSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Driver Updater\DriverUpdUI.exe <3>
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\jenny\Desktop\MALWAREBYTES\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\jenny\Desktop\MALWAREBYTES\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Privax Limited -> Privax Limited) C:\Program Files\Privax\HMA VPN\Vpn.exe <3>
(Privax Limited -> Privax Limited) C:\Program Files\Privax\HMA VPN\VpnSvc.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\SAMSUNG\USB Drivers\27_ssconn\conn\ss_conn_service.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [123672 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-19] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-07-24] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [3158808 2021-08-18] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
HKLM-x32\...\Run: [Adobe Version Cue CS2] => c:\Users\jenny\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [856064 2005-04-06] (Adobe Sytems Incorporated) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-605585087-13358803-1527955434-1000\...\Run: [CyberGhost] => "C:\Program Files\CyberGhost 6\CyberGhost.exe" /autostart /min
HKU\S-1-5-21-605585087-13358803-1527955434-1000\...\Run: [Loonea.exe] => C:\Users\jenny\AppData\Roaming\JsMediaProd\LooneaMail\LooneaMail.exe [1486848 2016-03-13] () [Fichier non signé]
HKU\S-1-5-21-605585087-13358803-1527955434-1000\...\Run: [ultracopier] => "C:\Program Files\Supercopier\supercopier.exe"
HKU\S-1-5-21-605585087-13358803-1527955434-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35144320 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-605585087-13358803-1527955434-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-19] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2017-08-24]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HMA VPN.lnk [2021-08-18]
ShortcutTarget: HMA VPN.lnk -> C:\Program Files\Privax\HMA VPN\Vpn.exe (Privax Limited -> Privax Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {000E7300-2FF9-43AD-9A60-F4C0513F5C65} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0BCC3520-B621-4929-A6BB-3F0EE125371E} - System32\Tasks\Privax\HMA VPN Bug Report => C:\Program Files\Privax\HMA VPN\AvBugReport.exe [4761592 2021-08-12] (Privax Limited -> Privax Limited) -> --filter "*.dmp;*.mdmp;icarus.log" --send "dumps|report" --silent --product 78 --programpath "C:\Program Files\Privax\HMA VPN" --configpath "C:\ProgramData\Privax\HMA VPN" --path "C:\ProgramData\Privax\HMA VPN\log" --path "C:\ProgramData\Privax\Icarus\Logs" --guid 9fa729a0-c948-468f-95ce-3b27b0c7870e
Task: {0F74629E-AA84-4C41-B64B-169BC3AFF899} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {107F8418-8D66-4976-8ECA-EAE063088989} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [4754712 2021-08-18] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid f5f1366a-3445-4b28-bf49-eeb1f9e61160
Task: {23DB25B6-F123-47A6-BFBF-4A0E8DFF97C6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {312CF56B-BA2B-451E-9D4A-87B66F434255} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {31FA08F8-D4BA-45A1-9C57-E11521CD7F4D} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {44C3A307-2C50-452C-8BB9-8CCF4D9AEC5C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {4619F2CC-E9C3-4D1C-A06D-0EEEDCFAACCB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-10-12] (Google Inc -> Google Inc.)
Task: {49DA349D-42AC-4235-9722-51F4E01DE710} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {54EF9812-6A2D-4EAD-98E9-4084FF865EBF} - System32\Tasks\{FECCB868-2086-48CC-B4D6-6977E8126464} => C:\Users\jenny\Desktop\SamFirm_v0.3.1\SamFirm.exe
Task: {5BA18057-92FF-442C-BD98-1C96B2F4C23B} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [6098200 2021-08-09] (Avast Software s.r.o. -> Avast Software)
Task: {6A845C91-7D19-4E1A-86A6-B8A5AC8BB59C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {6E4E6C95-6584-4E13-BE6C-7EAB128F7B15} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-20] (HP Inc. -> HP Inc.)
Task: {6EDABB96-0729-44C4-ABC1-1E967B3EFE9D} - System32\Tasks\HMA VPN Update => C:\Program Files\Privax\HMA VPN\VpnUpdate.exe [1279992 2021-08-12] (Privax Limited -> Privax Limited)
Task: {767A21CE-F726-4D73-8C1E-6F84F803E5BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\BingPopup\BingPopup.exe [555640 2021-03-25] (HP Inc. -> HP Inc.)
Task: {9067930B-A1A3-47A1-8EEF-812A893EAF6E} - System32\Tasks\CCleanerSkipUAC - jenny => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {99122F52-E05F-48C7-ADAA-EA2B9687B9B1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4902680 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
Task: {9C3369C8-2E0C-4196-A557-A436844B22C8} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {A85C3E96-78FF-4D5F-94FF-E27D2BCF4E9E} - System32\Tasks\{D98E42DB-FC62-4BF8-813D-68D773B072BA} => C:\Windows\system32\pcalua.exe -a C:\Users\jenny\Documents\Logiciels\CreativeSuiteCS2Disc2.exe -d C:\Users\jenny\Documents\Logiciels
Task: {AE3256E3-3F47-42C1-9F93-D3AA96CC548C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {B68E6FDD-EF11-4ABC-81FC-D34233D31C83} - System32\Tasks\FileAdvisorUpdate => C:\Program Files (x86)\File Type Advisor\fileadvisor.exe [3737600 2018-07-13] () [Fichier non signé]
Task: {C98D3385-80EF-499C-A9D9-951BCC0A25F2} - System32\Tasks\AdobeAAMUpdater-1.0-jenny-PC-jenny => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {CD806FC1-09E2-4AAE-B357-0E4355A7E82E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-10-12] (Google Inc -> Google Inc.)
Task: {D69399C4-CFD8-4663-9D4F-ACC1B52E4E91} - System32\Tasks\{5547E0A9-E9C2-47FE-96C0-7E6EDA906126} => C:\Users\jenny\Desktop\geeksn0w_win_2.7_ea343bc6ca7b07ad662e2c4b3e0cefa\geeksn0w_win_2.7.exe
Task: {D6E8F6E7-8281-4C18-BE4D-9A186682CD96} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {DC17D8D1-3ECD-487F-BF5B-0DA727817146} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-20] (HP Inc. -> HP Inc.)
Task: {DE3192F8-0A37-49B6-8A46-521B3F4150CB} - System32\Tasks\{DB74345A-2E9D-408B-9467-AE2A8B16C520} => C:\Users\jenny\Downloads\if.exe
Task: {E0076BA4-46B8-46EC-B587-DF72870B6A6F} - System32\Tasks\{5578A107-BC0E-4352-BFFF-D272409A4713} => msiexec.exe /package "C:\Users\jenny\Downloads\MM26_FR.msi"
Task: {E7208136-6326-4900-B434-D93DD892E24C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [326320 2021-06-16] (HP Inc. -> HP Inc.)
Task: {F0C3B59A-07E1-4D36-90FA-E39EEFEA5416} - System32\Tasks\{CE98254C-82FD-4AE8-ABB4-3CD378439DC5} => C:\Users\jenny\Desktop\SamFirm_v0.3.1\SamFirm.exe
Task: {FB194AD7-15FE-45AC-B3CF-F5C0A23F4F0B} - System32\Tasks\Privax\HMA VPN Update => C:\Program Files\Common Files\Privax\Icarus\privax-vpn\icarus.exe [6135360 2021-07-30] (Privax Limited -> Privax Limited)
Task: {FB9B652D-3B3D-4465-A555-BB97B89E7BDA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.)
Task: {FF679FE0-23ED-490C-BFC7-3BFF1DEA2912} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-08-16] (Piriform Software Ltd -> Piriform)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0837FCF1-E47F-49EA-9728-EED5980EF4D2}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{09EEC3AA-BC22-4F77-BFF1-2DFF4AAC4F54}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jenny\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-20]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: a2qfl2wb.default
FF ProfilePath: C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\r94vdw13.default-release [2021-08-20]
FF ProfilePath: C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default [2021-08-22]
FF Homepage: Mozilla\Firefox\Profiles\a2qfl2wb.default -> hxxp://www.google.com
FF HomepageOverride: Mozilla\Firefox\Profiles\a2qfl2wb.default -> Disabled: _4zMembers_@www.videodownloadconverter.com
FF NewTabOverride: Mozilla\Firefox\Profiles\a2qfl2wb.default -> Disabled: _omMembers_@screenwatch.yournewtab.com
FF NewTabOverride: Mozilla\Firefox\Profiles\a2qfl2wb.default -> Disabled: _4zMembers_@www.videodownloadconverter.com
FF NewTabOverride: Mozilla\Firefox\Profiles\a2qfl2wb.default -> Enabled: {2451ecb9-6260-4564-a546-8532f04b587a}
FF Extension: (Valence) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\fxdevtools-adapters@mozilla.org [2017-08-03] []
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\sp@avast.com.xpi [2020-07-03]
FF Extension: (Avast Online Security) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\wrc@avast.com.xpi [2021-02-23]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-08-20]
FF Extension: (Music World Search) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\{2451ecb9-6260-4564-a546-8532f04b587a}.xpi [2020-12-01] [UpdateUrl:hxxps://addons.world-search.net/tsff/updates.json]
FF Extension: (Music Finder Powered by Yahoo) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\{39790485-930b-40a5-8268-69222363ff80}.xpi [2020-10-05] [UpdateUrl:hxxps://addons.themusicfinder.net/mfff/updates.json]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_453.dll [2020-11-29] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_453.dll [2020-11-29] (Adobe Inc. -> )
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default [2021-08-20]
CHR Extension: (Slides) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-25]
CHR Extension: (Docs) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25]
CHR Extension: (Google Drive) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-23]
CHR Extension: (YouTube) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-15]
CHR Extension: (Avira Safe Shopping) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2021-04-14]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-01-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-06]
CHR Extension: (Yahoo Partner) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpedbdniajflhgfoipnjkednnlkngbj [2020-08-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-14]
CHR Extension: (Gmail) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-06]
CHR Extension: (Chrome Media Router) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-14]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [njpedbdniajflhgfoipnjkednnlkngbj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2017-08-24] (Adobe Systems) [Fichier non signé]
R2 Adobe Version Cue CS2; c:\Users\jenny\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-04-06] (Adobe Systems Incorporated) [Fichier non signé]
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-29] (Adobe Inc. -> Adobe)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8262736 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [627480 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [374552 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-29] (Avast Software s.r.o. -> AVAST Software)
R2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [6493464 2021-08-18] (Avast Software s.r.o. -> AVAST Software)
R2 HmaProVpn; C:\Program Files\Privax\HMA VPN\VpnSvc.exe [8808952 2021-08-12] (Privax Limited -> Privax Limited)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Users\jenny\Desktop\MALWAREBYTES\MBAMService.exe [7477704 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [323072 2012-08-19] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-02-12] (Microsoft Windows -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 androidusb; C:\Windows\System32\Drivers\ssadadb.sys [38080 2014-01-23] (MCCI Internal Testing Software -> Google Inc)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35720 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [218976 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [367640 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250392 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99352 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41352 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [184648 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [559816 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-22] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108408 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82904 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851704 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [471920 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215392 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [328568 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [199128 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
S3 evserial8; C:\Windows\System32\DRIVERS\evserial8.sys [21128 2016-11-30] (Eltima LLC -> ELTIMA Software)
S3 hmatap; C:\Windows\System32\DRIVERS\hmatap.sys [45560 2018-03-16] (Privax Limited -> The OpenVPN Project)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [198888 2021-08-21] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [69016 2021-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [146840 2021-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 R5BaseSmc; C:\Windows\System32\DRIVERS\smccard.sys [23592 2013-07-27] (Feitian Technologies Co., Ltd. -> OEM)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [30336 2007-01-18] (Research in Motion Ltd) [Fichier non signé]
S3 ssm_bus; C:\Windows\System32\DRIVERS\ssm_bus.sys [136192 2014-01-23] (MCCI Corporation -> MCCI Corporation)
S3 ssm_mdm; C:\Windows\System32\DRIVERS\ssm_mdm.sys [172032 2014-01-23] (MCCI Corporation -> MCCI Corporation)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [542208 2012-08-19] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35784 2017-03-20] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
S3 token; C:\Windows\System32\DRIVERS\eps2kt1.sys [43432 2013-07-27] (Feitian Technologies Co., Ltd. -> OEM)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 VSBC8; C:\Windows\System32\DRIVERS\evsbc8.sys [104584 2016-11-30] (Eltima LLC -> ELTIMA Software)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-22 14:13 - 2021-08-22 14:14 - 000029440 _____ C:\Users\jenny\Downloads\FRST.txt
2021-08-22 14:08 - 2021-08-22 14:08 - 002300928 _____ (Farbar) C:\Users\jenny\Downloads\FRST64.exe
2021-08-22 12:45 - 2021-08-22 12:45 - 000000000 ____D C:\Users\jenny\Desktop\FRST-OlderVersion
2021-08-22 03:02 - 2021-08-22 03:02 - 000000000 ____D C:\Users\jenny\AppData\LocalLow\IGDump
2021-08-21 13:34 - 2021-08-21 13:34 - 000069016 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2021-08-21 13:33 - 2021-08-21 13:33 - 000198888 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2021-08-21 13:33 - 2021-08-21 13:33 - 000146840 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2021-08-20 22:11 - 2021-08-21 13:07 - 000000265 _____ C:\Users\jenny\Desktop\FRST.txt
2021-08-20 22:10 - 2021-08-21 13:07 - 000040658 _____ C:\Users\jenny\Desktop\Addition.txt
2021-08-20 21:25 - 2021-08-22 14:13 - 000000000 ____D C:\FRST
2021-08-19 19:24 - 2021-08-19 19:24 - 000000000 ____D C:\Users\jenny\Desktop\ZHPCleaner
2021-08-19 13:59 - 2021-08-19 13:59 - 000000000 ____D C:\Users\jenny\Desktop\ZHPSuite
2021-08-19 13:57 - 2021-08-19 13:57 - 003019845 _____ C:\Users\jenny\Downloads\ZHPSuite.zip
2021-08-19 13:26 - 2021-08-21 13:00 - 000000000 ____D C:\Users\jenny\Desktop\RAPPORTS
2021-08-19 13:03 - 2021-08-19 13:03 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-08-19 13:03 - 2021-08-19 13:03 - 000002003 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-08-19 11:59 - 2021-08-19 13:03 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-08-19 11:59 - 2021-08-19 11:59 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-08-19 11:58 - 2021-08-19 11:57 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-08-19 11:57 - 2021-08-19 11:57 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-08-19 11:51 - 2021-08-22 03:01 - 000000000 ____D C:\Users\jenny\Desktop\MALWAREBYTES
2021-08-19 10:11 - 2021-08-19 10:11 - 000002808 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - jenny
2021-08-18 21:41 - 2021-08-18 21:41 - 000000000 ____D C:\Users\jenny\AppData\Local\CrashDumps
2021-08-18 20:26 - 2021-08-18 20:26 - 002120496 _____ (Malwarebytes) C:\Users\jenny\Downloads\MBSetup.exe
2021-08-18 18:55 - 2021-08-18 18:55 - 000000000 ____D C:\Users\jenny\AppData\Local\mbam
2021-08-18 18:49 - 2021-08-18 18:49 - 000000000 ____D C:\Program Files\Malwarebytes
2021-08-18 18:48 - 2021-08-18 18:48 - 002120496 _____ (Malwarebytes) C:\Users\jenny\Desktop\MBSetup.exe
2021-08-18 18:37 - 2021-08-18 18:37 - 008553680 _____ (Malwarebytes) C:\Users\jenny\Desktop\adwcleaner_8.3.0.exe
2021-08-18 18:13 - 2021-08-18 18:13 - 002824093 _____ C:\Users\jenny\Downloads\ZHPCleaner.zip
2021-08-18 15:59 - 2021-08-20 17:21 - 000000000 ____D C:\Users\jenny\AppData\Roaming\ZHP
2021-08-18 15:58 - 2021-08-19 13:59 - 000000000 ____D C:\Users\jenny\AppData\Local\ZHP
2021-08-18 15:58 - 2021-08-18 15:58 - 003280024 _____ (Nicolas Coolman) C:\Users\jenny\Downloads\ZHPDiag3.exe
2021-08-13 17:59 - 2021-08-18 21:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-08-12 18:06 - 2021-08-12 18:06 - 000000000 ____D C:\Users\jenny\Desktop\Recovered data 08-12 18_06_55
2021-08-12 17:43 - 2014-10-08 01:58 - 000000000 ____D C:\Users\jenny\Downloads\JRS
2021-08-12 17:41 - 2021-08-12 17:42 - 017487405 _____ C:\Users\jenny\Downloads\JRS.zip
2021-08-12 17:35 - 2021-08-12 17:35 - 000000000 ____D C:\Users\jenny\Desktop\StellarJPEG_Repaired
2021-08-12 17:30 - 2021-08-12 17:31 - 013999160 _____ C:\Users\jenny\Downloads\OneSafeJPEGRepair.4.5.0.0.taiwebs.com.rar
2021-08-12 15:01 - 2021-08-12 15:02 - 000000000 ____D C:\Users\jenny\Downloads\Wondershare Data Recovery 5.0.7.8 & Portable
2021-08-12 14:59 - 2017-01-19 11:26 - 000000000 ____D C:\Users\jenny\Downloads\Crack
2021-08-12 14:59 - 2017-01-15 23:35 - 026560008 _____ (Wondershare Software Co.,Ltd. ) C:\Users\jenny\Downloads\data-recovery_full542.exe
2021-08-12 14:36 - 2021-08-12 14:38 - 027258884 _____ C:\Users\jenny\Downloads\Wondershare Data Recovery 5.0.7.8 & Portable.zip
2021-08-12 14:35 - 2021-08-12 14:35 - 000000000 ____D C:\Users\jenny\Documents\My Data Files
2021-08-12 14:34 - 2021-08-12 15:04 - 000001220 _____ C:\Users\Public\Desktop\Wondershare Data Recovery.lnk
2021-08-12 14:34 - 2021-08-12 14:35 - 000000000 ____D C:\ProgramData\Wondershare
2021-08-12 14:34 - 2021-08-12 14:34 - 000000000 ____D C:\Users\jenny\AppData\Local\Wondershare
2021-08-12 14:34 - 2021-08-12 14:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-08-12 14:34 - 2021-08-12 14:34 - 000000000 ____D C:\Program Files (x86)\Wondershare
2021-08-12 14:01 - 2021-08-18 13:05 - 000001150 _____ C:\Users\Public\Desktop\EaseUS Data Recovery Wizard.lnk
2021-08-12 14:01 - 2021-08-12 14:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard
2021-08-12 13:52 - 2021-08-12 13:53 - 032295305 _____ C:\Users\jenny\Downloads\EaseUS Data Recovery Wizard All Editions(1).zip
2021-08-12 13:35 - 2019-10-13 00:23 - 000000000 ____D C:\Users\jenny\Downloads\EaseUS Data Recovery Wizard All Editions 11.8
2021-08-12 13:26 - 2021-08-12 13:27 - 045641008 _____ (EaseUS ) C:\Users\jenny\Downloads\DRW14.2.1_Free.exe
2021-08-12 12:44 - 2021-08-12 12:44 - 000042776 _____ C:\Users\jenny\Downloads\rebuilt.DRW_Free_RSS_new_Installer_20210812.16494.exe
2021-08-12 12:42 - 2021-08-12 12:42 - 000000000 ____D C:\Users\jenny\Desktop\DRW_Free_RSS_new_Installer_20210812.16494
2021-08-12 12:11 - 2021-08-12 12:12 - 032295305 _____ C:\Users\jenny\Downloads\EaseUS Data Recovery Wizard All Editions.zip
2021-08-12 11:30 - 2021-08-12 11:30 - 002069096 _____ C:\Users\jenny\Downloads\DRW_Free_RSS_new_Installer_20210812.16494.exe
2021-08-12 11:18 - 2021-08-12 11:18 - 000000000 ____D C:\ProgramData\SystemAcCrux
2021-08-12 11:16 - 2021-08-12 11:16 - 000000000 ____D C:\Users\jenny\AppData\Roaming\EaseUS
2021-08-12 11:16 - 2021-08-12 11:16 - 000000000 ____D C:\Program Files\EaseUS
2021-08-12 11:15 - 2021-08-12 11:16 - 045873656 _____ (EaseUS ) C:\Users\jenny\Downloads\DRW14.2.1_Trial.exe
2021-08-12 11:14 - 2021-08-12 11:14 - 002069104 _____ C:\Users\jenny\Downloads\DRW_Trial_RSS_new_Installer_20210812.16661.exe
2021-08-06 15:33 - 2021-08-06 15:33 - 000339736 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-08-06 15:33 - 2021-08-06 15:33 - 000215392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-22 14:11 - 2016-11-19 12:10 - 000000000 ____D C:\Users\jenny\AppData\LocalLow\Mozilla
2021-08-22 14:07 - 2019-02-14 09:59 - 000000000 ____D C:\ProgramData\Mozilla
2021-08-22 13:38 - 2016-10-12 15:58 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-22 13:29 - 2019-10-23 21:28 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-08-22 10:12 - 2016-10-12 16:06 - 000000000 ____D C:\Program Files\CCleaner
2021-08-22 04:27 - 2009-07-14 06:45 - 000030112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-08-22 04:27 - 2009-07-14 06:45 - 000030112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-08-21 19:46 - 2018-08-31 19:47 - 000000000 ____D C:\Users\jenny\AppData\Roaming\FileAdvisor
2021-08-21 13:37 - 2015-03-10 00:46 - 000034854 _____ C:\Windows\system32\perfh00C.dat
2021-08-21 13:37 - 2015-03-10 00:46 - 000013988 _____ C:\Windows\system32\perfc00C.dat
2021-08-21 13:37 - 2015-03-10 00:43 - 000741722 _____ C:\Windows\system32\perfh00A.dat
2021-08-21 13:37 - 2015-03-10 00:43 - 000162612 _____ C:\Windows\system32\perfc00A.dat
2021-08-21 13:37 - 2015-03-10 00:41 - 000693474 _____ C:\Windows\system32\perfh007.dat
2021-08-21 13:37 - 2015-03-10 00:41 - 000153254 _____ C:\Windows\system32\perfc007.dat
2021-08-21 13:37 - 2009-07-14 07:13 - 002571616 _____ C:\Windows\system32\PerfStringBackup.INI
2021-08-21 13:37 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-08-21 13:28 - 2021-04-13 19:07 - 000000000 ____D C:\ProgramData\Privax
2021-08-21 13:28 - 2017-11-01 15:52 - 000000000 ____D C:\Users\jenny\AppData\Local\AVAST Software
2021-08-21 13:27 - 2021-05-12 13:05 - 000003882 _____ C:\Windows\system32\Tasks\HMA VPN Update
2021-08-21 13:26 - 2016-10-12 15:54 - 000000000 ____D C:\ProgramData\AVAST Software
2021-08-21 13:25 - 2020-07-09 19:26 - 000122880 ___SH C:\Users\jenny\Desktop\Thumbs.db
2021-08-21 13:25 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-08-20 23:52 - 2018-05-29 08:49 - 000000000 ____D C:\Windows\Minidump
2021-08-20 21:30 - 2019-12-25 14:47 - 000000000 ____D C:\Users\jenny\Desktop\Sauvegarde S7
2021-08-20 15:56 - 2018-09-08 07:17 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-08-20 15:35 - 2017-03-14 11:07 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-08-19 11:44 - 2017-02-20 16:20 - 000000000 ____D C:\Program Files (x86)\Miracle Falcon Box
2021-08-18 21:24 - 2016-09-15 11:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-08-18 18:39 - 2017-08-28 19:59 - 000000000 ____D C:\AdwCleaner
2021-08-18 15:42 - 2020-06-26 03:20 - 000004756 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-18 10:07 - 2016-09-15 12:27 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2021-08-15 13:50 - 2016-10-10 12:34 - 000000000 ____D C:\Users\jenny\Documents\CAF
2021-08-12 18:23 - 2017-08-31 13:50 - 000000000 ____D C:\Users\jenny\AppData\Roaming\vlc
2021-08-12 18:22 - 2020-06-26 03:20 - 000003406 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-12 18:22 - 2019-10-23 21:28 - 000003450 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2021-08-12 18:22 - 2018-08-26 19:46 - 000003594 _____ C:\Windows\system32\Tasks\FileAdvisorUpdate
2021-08-12 18:22 - 2018-08-01 19:18 - 000003044 _____ C:\Windows\system32\Tasks\{5578A107-BC0E-4352-BFFF-D272409A4713}
2021-08-12 18:22 - 2017-08-28 19:34 - 000003050 _____ C:\Windows\system32\Tasks\{5547E0A9-E9C2-47FE-96C0-7E6EDA906126}
2021-08-12 18:22 - 2017-08-24 11:46 - 000003190 _____ C:\Windows\system32\Tasks\{D98E42DB-FC62-4BF8-813D-68D773B072BA}
2021-08-12 18:22 - 2017-08-12 12:58 - 000003502 _____ C:\Windows\system32\Tasks\AdobeAAMUpdater-1.0-jenny-PC-jenny
2021-08-12 18:22 - 2017-03-16 22:31 - 000002928 _____ C:\Windows\system32\Tasks\{DB74345A-2E9D-408B-9467-AE2A8B16C520}
2021-08-12 18:22 - 2017-02-20 17:28 - 000002964 _____ C:\Windows\system32\Tasks\{FECCB868-2086-48CC-B4D6-6977E8126464}
2021-08-12 18:22 - 2017-02-20 17:27 - 000002964 _____ C:\Windows\system32\Tasks\{CE98254C-82FD-4AE8-ABB4-3CD378439DC5}
2021-08-12 18:22 - 2016-10-12 16:06 - 000002790 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-08-12 18:22 - 2016-10-12 15:58 - 000003504 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-12 18:22 - 2016-10-12 15:58 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-08-12 18:22 - 2016-10-12 15:56 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-08-12 18:22 - 2016-10-10 12:42 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-08-06 15:33 - 2020-10-16 09:16 - 000184648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-08-06 15:33 - 2020-04-22 13:46 - 000559816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-08-06 15:33 - 2019-01-18 20:27 - 000250392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-08-06 15:33 - 2019-01-18 20:27 - 000099352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-08-06 15:33 - 2019-01-18 20:27 - 000035720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-08-06 15:33 - 2018-10-20 16:48 - 000041352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-08-06 15:33 - 2017-11-15 11:06 - 000218976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-08-06 15:33 - 2016-10-12 15:56 - 000851704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-08-06 15:33 - 2016-10-12 15:56 - 000471920 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-08-06 15:33 - 2016-10-12 15:56 - 000328568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-08-06 15:33 - 2016-10-12 15:56 - 000108408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-08-06 15:33 - 2016-10-12 15:56 - 000082904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-08-06 15:32 - 2019-01-28 10:46 - 000367640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-08-06 11:01 - 2018-02-21 14:47 - 000000000 ____D C:\Users\jenny\Documents\EURO ASSURANCE
2021-07-29 11:47 - 2017-04-12 23:24 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Fichiers à la racine de certains dossiers ========
2017-08-28 19:35 - 2018-03-06 14:14 - 000523776 _____ () C:\ProgramData\arch.exe
2017-08-28 19:36 - 2017-08-28 19:36 - 000054784 _____ () C:\ProgramData\irecovery.exe
2017-08-28 19:35 - 2018-03-06 14:14 - 000082107 _____ () C:\ProgramData\run.exe
2017-03-16 21:22 - 2017-03-16 21:22 - 000000036 _____ () C:\Users\jenny\AppData\Roaming\iCloudFaker.txt
2018-10-03 09:49 - 2018-10-03 09:49 - 000000000 _____ () C:\Users\jenny\AppData\Local\oobelibMkey.log
2017-08-28 19:35 - 2019-09-07 15:03 - 000000600 _____ () C:\Users\jenny\AppData\Local\PUTTY.RND
2019-12-13 12:32 - 2019-12-13 12:32 - 000000000 _____ () C:\Users\jenny\AppData\Local\{10FAF153-E478-4FEC-9C2B-79BBF1144DE6}
2019-02-24 21:51 - 2019-02-24 21:51 - 000000000 _____ () C:\Users\jenny\AppData\Local\{25B60BD6-1A63-4E18-A9F9-F05AA4D21DCE}
2019-10-22 11:03 - 2019-10-22 11:03 - 000000000 _____ () C:\Users\jenny\AppData\Local\{4612939C-A64A-411F-8EE3-36470306E217}
2019-10-22 11:03 - 2019-10-22 11:03 - 000000000 _____ () C:\Users\jenny\AppData\Local\{6A138A9C-53EC-4F5C-8273-EF60F225FAC9}
2019-12-18 13:49 - 2019-12-18 13:49 - 000000000 _____ () C:\Users\jenny\AppData\Local\{76F2C183-EB14-4DF2-A9CA-C1DCB1C14E2D}
2019-12-18 13:49 - 2019-12-18 13:49 - 000000000 _____ () C:\Users\jenny\AppData\Local\{B34733A2-7367-4958-BF67-7F9694719450}
2019-02-24 21:51 - 2019-02-24 21:51 - 000000000 _____ () C:\Users\jenny\AppData\Local\{CFBBBD80-E002-4F2F-BE44-661C6AA154E3}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2021-08-20 00:12
==================== Fin de FRST.txt ========================
Exécuté par jenny (administrateur) sur JENNY-PC (Hewlett-Packard HP Pavilion g6 Notebook PC) (22-08-2021 14:13:12)
Exécuté depuis C:\Users\jenny\Downloads
Profils chargés: jenny
Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Users\jenny\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) [Fichier non signé] C:\Users\jenny\Adobe Version Cue CS2\bin\VersionCueCS2.exe
(Adobe Sytems Incorporated) [Fichier non signé] C:\Users\jenny\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Driver Updater\DriverUpdSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Driver Updater\DriverUpdUI.exe <3>
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\jenny\Desktop\MALWAREBYTES\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\jenny\Desktop\MALWAREBYTES\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Privax Limited -> Privax Limited) C:\Program Files\Privax\HMA VPN\Vpn.exe <3>
(Privax Limited -> Privax Limited) C:\Program Files\Privax\HMA VPN\VpnSvc.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\SAMSUNG\USB Drivers\27_ssconn\conn\ss_conn_service.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [123672 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-19] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-07-24] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [3158808 2021-08-18] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
HKLM-x32\...\Run: [Adobe Version Cue CS2] => c:\Users\jenny\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [856064 2005-04-06] (Adobe Sytems Incorporated) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-605585087-13358803-1527955434-1000\...\Run: [CyberGhost] => "C:\Program Files\CyberGhost 6\CyberGhost.exe" /autostart /min
HKU\S-1-5-21-605585087-13358803-1527955434-1000\...\Run: [Loonea.exe] => C:\Users\jenny\AppData\Roaming\JsMediaProd\LooneaMail\LooneaMail.exe [1486848 2016-03-13] () [Fichier non signé]
HKU\S-1-5-21-605585087-13358803-1527955434-1000\...\Run: [ultracopier] => "C:\Program Files\Supercopier\supercopier.exe"
HKU\S-1-5-21-605585087-13358803-1527955434-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35144320 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-605585087-13358803-1527955434-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-19] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2017-08-24]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HMA VPN.lnk [2021-08-18]
ShortcutTarget: HMA VPN.lnk -> C:\Program Files\Privax\HMA VPN\Vpn.exe (Privax Limited -> Privax Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {000E7300-2FF9-43AD-9A60-F4C0513F5C65} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0BCC3520-B621-4929-A6BB-3F0EE125371E} - System32\Tasks\Privax\HMA VPN Bug Report => C:\Program Files\Privax\HMA VPN\AvBugReport.exe [4761592 2021-08-12] (Privax Limited -> Privax Limited) -> --filter "*.dmp;*.mdmp;icarus.log" --send "dumps|report" --silent --product 78 --programpath "C:\Program Files\Privax\HMA VPN" --configpath "C:\ProgramData\Privax\HMA VPN" --path "C:\ProgramData\Privax\HMA VPN\log" --path "C:\ProgramData\Privax\Icarus\Logs" --guid 9fa729a0-c948-468f-95ce-3b27b0c7870e
Task: {0F74629E-AA84-4C41-B64B-169BC3AFF899} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {107F8418-8D66-4976-8ECA-EAE063088989} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [4754712 2021-08-18] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid f5f1366a-3445-4b28-bf49-eeb1f9e61160
Task: {23DB25B6-F123-47A6-BFBF-4A0E8DFF97C6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {312CF56B-BA2B-451E-9D4A-87B66F434255} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {31FA08F8-D4BA-45A1-9C57-E11521CD7F4D} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {44C3A307-2C50-452C-8BB9-8CCF4D9AEC5C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {4619F2CC-E9C3-4D1C-A06D-0EEEDCFAACCB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-10-12] (Google Inc -> Google Inc.)
Task: {49DA349D-42AC-4235-9722-51F4E01DE710} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {54EF9812-6A2D-4EAD-98E9-4084FF865EBF} - System32\Tasks\{FECCB868-2086-48CC-B4D6-6977E8126464} => C:\Users\jenny\Desktop\SamFirm_v0.3.1\SamFirm.exe
Task: {5BA18057-92FF-442C-BD98-1C96B2F4C23B} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [6098200 2021-08-09] (Avast Software s.r.o. -> Avast Software)
Task: {6A845C91-7D19-4E1A-86A6-B8A5AC8BB59C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {6E4E6C95-6584-4E13-BE6C-7EAB128F7B15} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-20] (HP Inc. -> HP Inc.)
Task: {6EDABB96-0729-44C4-ABC1-1E967B3EFE9D} - System32\Tasks\HMA VPN Update => C:\Program Files\Privax\HMA VPN\VpnUpdate.exe [1279992 2021-08-12] (Privax Limited -> Privax Limited)
Task: {767A21CE-F726-4D73-8C1E-6F84F803E5BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\BingPopup\BingPopup.exe [555640 2021-03-25] (HP Inc. -> HP Inc.)
Task: {9067930B-A1A3-47A1-8EEF-812A893EAF6E} - System32\Tasks\CCleanerSkipUAC - jenny => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {99122F52-E05F-48C7-ADAA-EA2B9687B9B1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4902680 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
Task: {9C3369C8-2E0C-4196-A557-A436844B22C8} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {A85C3E96-78FF-4D5F-94FF-E27D2BCF4E9E} - System32\Tasks\{D98E42DB-FC62-4BF8-813D-68D773B072BA} => C:\Windows\system32\pcalua.exe -a C:\Users\jenny\Documents\Logiciels\CreativeSuiteCS2Disc2.exe -d C:\Users\jenny\Documents\Logiciels
Task: {AE3256E3-3F47-42C1-9F93-D3AA96CC548C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {B68E6FDD-EF11-4ABC-81FC-D34233D31C83} - System32\Tasks\FileAdvisorUpdate => C:\Program Files (x86)\File Type Advisor\fileadvisor.exe [3737600 2018-07-13] () [Fichier non signé]
Task: {C98D3385-80EF-499C-A9D9-951BCC0A25F2} - System32\Tasks\AdobeAAMUpdater-1.0-jenny-PC-jenny => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {CD806FC1-09E2-4AAE-B357-0E4355A7E82E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-10-12] (Google Inc -> Google Inc.)
Task: {D69399C4-CFD8-4663-9D4F-ACC1B52E4E91} - System32\Tasks\{5547E0A9-E9C2-47FE-96C0-7E6EDA906126} => C:\Users\jenny\Desktop\geeksn0w_win_2.7_ea343bc6ca7b07ad662e2c4b3e0cefa\geeksn0w_win_2.7.exe
Task: {D6E8F6E7-8281-4C18-BE4D-9A186682CD96} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {DC17D8D1-3ECD-487F-BF5B-0DA727817146} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-20] (HP Inc. -> HP Inc.)
Task: {DE3192F8-0A37-49B6-8A46-521B3F4150CB} - System32\Tasks\{DB74345A-2E9D-408B-9467-AE2A8B16C520} => C:\Users\jenny\Downloads\if.exe
Task: {E0076BA4-46B8-46EC-B587-DF72870B6A6F} - System32\Tasks\{5578A107-BC0E-4352-BFFF-D272409A4713} => msiexec.exe /package "C:\Users\jenny\Downloads\MM26_FR.msi"
Task: {E7208136-6326-4900-B434-D93DD892E24C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [326320 2021-06-16] (HP Inc. -> HP Inc.)
Task: {F0C3B59A-07E1-4D36-90FA-E39EEFEA5416} - System32\Tasks\{CE98254C-82FD-4AE8-ABB4-3CD378439DC5} => C:\Users\jenny\Desktop\SamFirm_v0.3.1\SamFirm.exe
Task: {FB194AD7-15FE-45AC-B3CF-F5C0A23F4F0B} - System32\Tasks\Privax\HMA VPN Update => C:\Program Files\Common Files\Privax\Icarus\privax-vpn\icarus.exe [6135360 2021-07-30] (Privax Limited -> Privax Limited)
Task: {FB9B652D-3B3D-4465-A555-BB97B89E7BDA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.)
Task: {FF679FE0-23ED-490C-BFC7-3BFF1DEA2912} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-08-16] (Piriform Software Ltd -> Piriform)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0837FCF1-E47F-49EA-9728-EED5980EF4D2}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{09EEC3AA-BC22-4F77-BFF1-2DFF4AAC4F54}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jenny\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-20]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: a2qfl2wb.default
FF ProfilePath: C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\r94vdw13.default-release [2021-08-20]
FF ProfilePath: C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default [2021-08-22]
FF Homepage: Mozilla\Firefox\Profiles\a2qfl2wb.default -> hxxp://www.google.com
FF HomepageOverride: Mozilla\Firefox\Profiles\a2qfl2wb.default -> Disabled: _4zMembers_@www.videodownloadconverter.com
FF NewTabOverride: Mozilla\Firefox\Profiles\a2qfl2wb.default -> Disabled: _omMembers_@screenwatch.yournewtab.com
FF NewTabOverride: Mozilla\Firefox\Profiles\a2qfl2wb.default -> Disabled: _4zMembers_@www.videodownloadconverter.com
FF NewTabOverride: Mozilla\Firefox\Profiles\a2qfl2wb.default -> Enabled: {2451ecb9-6260-4564-a546-8532f04b587a}
FF Extension: (Valence) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\fxdevtools-adapters@mozilla.org [2017-08-03] []
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\sp@avast.com.xpi [2020-07-03]
FF Extension: (Avast Online Security) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\wrc@avast.com.xpi [2021-02-23]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-08-20]
FF Extension: (Music World Search) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\{2451ecb9-6260-4564-a546-8532f04b587a}.xpi [2020-12-01] [UpdateUrl:hxxps://addons.world-search.net/tsff/updates.json]
FF Extension: (Music Finder Powered by Yahoo) - C:\Users\jenny\AppData\Roaming\Mozilla\Firefox\Profiles\a2qfl2wb.default\Extensions\{39790485-930b-40a5-8268-69222363ff80}.xpi [2020-10-05] [UpdateUrl:hxxps://addons.themusicfinder.net/mfff/updates.json]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_453.dll [2020-11-29] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_453.dll [2020-11-29] (Adobe Inc. -> )
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default [2021-08-20]
CHR Extension: (Slides) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-25]
CHR Extension: (Docs) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25]
CHR Extension: (Google Drive) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-23]
CHR Extension: (YouTube) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-15]
CHR Extension: (Avira Safe Shopping) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2021-04-14]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-01-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-06]
CHR Extension: (Yahoo Partner) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpedbdniajflhgfoipnjkednnlkngbj [2020-08-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-14]
CHR Extension: (Gmail) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-06]
CHR Extension: (Chrome Media Router) - C:\Users\jenny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-14]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [njpedbdniajflhgfoipnjkednnlkngbj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2017-08-24] (Adobe Systems) [Fichier non signé]
R2 Adobe Version Cue CS2; c:\Users\jenny\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-04-06] (Adobe Systems Incorporated) [Fichier non signé]
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-29] (Adobe Inc. -> Adobe)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8262736 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [627480 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [374552 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-29] (Avast Software s.r.o. -> AVAST Software)
R2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [6493464 2021-08-18] (Avast Software s.r.o. -> AVAST Software)
R2 HmaProVpn; C:\Program Files\Privax\HMA VPN\VpnSvc.exe [8808952 2021-08-12] (Privax Limited -> Privax Limited)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Users\jenny\Desktop\MALWAREBYTES\MBAMService.exe [7477704 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [323072 2012-08-19] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-02-12] (Microsoft Windows -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 androidusb; C:\Windows\System32\Drivers\ssadadb.sys [38080 2014-01-23] (MCCI Internal Testing Software -> Google Inc)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35720 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [218976 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [367640 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250392 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99352 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41352 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [184648 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [559816 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-22] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108408 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82904 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851704 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [471920 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215392 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [328568 2021-08-06] (Avast Software s.r.o. -> AVAST Software)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [199128 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
S3 evserial8; C:\Windows\System32\DRIVERS\evserial8.sys [21128 2016-11-30] (Eltima LLC -> ELTIMA Software)
S3 hmatap; C:\Windows\System32\DRIVERS\hmatap.sys [45560 2018-03-16] (Privax Limited -> The OpenVPN Project)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [198888 2021-08-21] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [69016 2021-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [146840 2021-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 R5BaseSmc; C:\Windows\System32\DRIVERS\smccard.sys [23592 2013-07-27] (Feitian Technologies Co., Ltd. -> OEM)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [30336 2007-01-18] (Research in Motion Ltd) [Fichier non signé]
S3 ssm_bus; C:\Windows\System32\DRIVERS\ssm_bus.sys [136192 2014-01-23] (MCCI Corporation -> MCCI Corporation)
S3 ssm_mdm; C:\Windows\System32\DRIVERS\ssm_mdm.sys [172032 2014-01-23] (MCCI Corporation -> MCCI Corporation)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [542208 2012-08-19] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35784 2017-03-20] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
S3 token; C:\Windows\System32\DRIVERS\eps2kt1.sys [43432 2013-07-27] (Feitian Technologies Co., Ltd. -> OEM)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 VSBC8; C:\Windows\System32\DRIVERS\evsbc8.sys [104584 2016-11-30] (Eltima LLC -> ELTIMA Software)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-22 14:13 - 2021-08-22 14:14 - 000029440 _____ C:\Users\jenny\Downloads\FRST.txt
2021-08-22 14:08 - 2021-08-22 14:08 - 002300928 _____ (Farbar) C:\Users\jenny\Downloads\FRST64.exe
2021-08-22 12:45 - 2021-08-22 12:45 - 000000000 ____D C:\Users\jenny\Desktop\FRST-OlderVersion
2021-08-22 03:02 - 2021-08-22 03:02 - 000000000 ____D C:\Users\jenny\AppData\LocalLow\IGDump
2021-08-21 13:34 - 2021-08-21 13:34 - 000069016 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2021-08-21 13:33 - 2021-08-21 13:33 - 000198888 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2021-08-21 13:33 - 2021-08-21 13:33 - 000146840 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2021-08-20 22:11 - 2021-08-21 13:07 - 000000265 _____ C:\Users\jenny\Desktop\FRST.txt
2021-08-20 22:10 - 2021-08-21 13:07 - 000040658 _____ C:\Users\jenny\Desktop\Addition.txt
2021-08-20 21:25 - 2021-08-22 14:13 - 000000000 ____D C:\FRST
2021-08-19 19:24 - 2021-08-19 19:24 - 000000000 ____D C:\Users\jenny\Desktop\ZHPCleaner
2021-08-19 13:59 - 2021-08-19 13:59 - 000000000 ____D C:\Users\jenny\Desktop\ZHPSuite
2021-08-19 13:57 - 2021-08-19 13:57 - 003019845 _____ C:\Users\jenny\Downloads\ZHPSuite.zip
2021-08-19 13:26 - 2021-08-21 13:00 - 000000000 ____D C:\Users\jenny\Desktop\RAPPORTS
2021-08-19 13:03 - 2021-08-19 13:03 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-08-19 13:03 - 2021-08-19 13:03 - 000002003 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-08-19 11:59 - 2021-08-19 13:03 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-08-19 11:59 - 2021-08-19 11:59 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-08-19 11:58 - 2021-08-19 11:57 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-08-19 11:57 - 2021-08-19 11:57 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-08-19 11:51 - 2021-08-22 03:01 - 000000000 ____D C:\Users\jenny\Desktop\MALWAREBYTES
2021-08-19 10:11 - 2021-08-19 10:11 - 000002808 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - jenny
2021-08-18 21:41 - 2021-08-18 21:41 - 000000000 ____D C:\Users\jenny\AppData\Local\CrashDumps
2021-08-18 20:26 - 2021-08-18 20:26 - 002120496 _____ (Malwarebytes) C:\Users\jenny\Downloads\MBSetup.exe
2021-08-18 18:55 - 2021-08-18 18:55 - 000000000 ____D C:\Users\jenny\AppData\Local\mbam
2021-08-18 18:49 - 2021-08-18 18:49 - 000000000 ____D C:\Program Files\Malwarebytes
2021-08-18 18:48 - 2021-08-18 18:48 - 002120496 _____ (Malwarebytes) C:\Users\jenny\Desktop\MBSetup.exe
2021-08-18 18:37 - 2021-08-18 18:37 - 008553680 _____ (Malwarebytes) C:\Users\jenny\Desktop\adwcleaner_8.3.0.exe
2021-08-18 18:13 - 2021-08-18 18:13 - 002824093 _____ C:\Users\jenny\Downloads\ZHPCleaner.zip
2021-08-18 15:59 - 2021-08-20 17:21 - 000000000 ____D C:\Users\jenny\AppData\Roaming\ZHP
2021-08-18 15:58 - 2021-08-19 13:59 - 000000000 ____D C:\Users\jenny\AppData\Local\ZHP
2021-08-18 15:58 - 2021-08-18 15:58 - 003280024 _____ (Nicolas Coolman) C:\Users\jenny\Downloads\ZHPDiag3.exe
2021-08-13 17:59 - 2021-08-18 21:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-08-12 18:06 - 2021-08-12 18:06 - 000000000 ____D C:\Users\jenny\Desktop\Recovered data 08-12 18_06_55
2021-08-12 17:43 - 2014-10-08 01:58 - 000000000 ____D C:\Users\jenny\Downloads\JRS
2021-08-12 17:41 - 2021-08-12 17:42 - 017487405 _____ C:\Users\jenny\Downloads\JRS.zip
2021-08-12 17:35 - 2021-08-12 17:35 - 000000000 ____D C:\Users\jenny\Desktop\StellarJPEG_Repaired
2021-08-12 17:30 - 2021-08-12 17:31 - 013999160 _____ C:\Users\jenny\Downloads\OneSafeJPEGRepair.4.5.0.0.taiwebs.com.rar
2021-08-12 15:01 - 2021-08-12 15:02 - 000000000 ____D C:\Users\jenny\Downloads\Wondershare Data Recovery 5.0.7.8 & Portable
2021-08-12 14:59 - 2017-01-19 11:26 - 000000000 ____D C:\Users\jenny\Downloads\Crack
2021-08-12 14:59 - 2017-01-15 23:35 - 026560008 _____ (Wondershare Software Co.,Ltd. ) C:\Users\jenny\Downloads\data-recovery_full542.exe
2021-08-12 14:36 - 2021-08-12 14:38 - 027258884 _____ C:\Users\jenny\Downloads\Wondershare Data Recovery 5.0.7.8 & Portable.zip
2021-08-12 14:35 - 2021-08-12 14:35 - 000000000 ____D C:\Users\jenny\Documents\My Data Files
2021-08-12 14:34 - 2021-08-12 15:04 - 000001220 _____ C:\Users\Public\Desktop\Wondershare Data Recovery.lnk
2021-08-12 14:34 - 2021-08-12 14:35 - 000000000 ____D C:\ProgramData\Wondershare
2021-08-12 14:34 - 2021-08-12 14:34 - 000000000 ____D C:\Users\jenny\AppData\Local\Wondershare
2021-08-12 14:34 - 2021-08-12 14:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-08-12 14:34 - 2021-08-12 14:34 - 000000000 ____D C:\Program Files (x86)\Wondershare
2021-08-12 14:01 - 2021-08-18 13:05 - 000001150 _____ C:\Users\Public\Desktop\EaseUS Data Recovery Wizard.lnk
2021-08-12 14:01 - 2021-08-12 14:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard
2021-08-12 13:52 - 2021-08-12 13:53 - 032295305 _____ C:\Users\jenny\Downloads\EaseUS Data Recovery Wizard All Editions(1).zip
2021-08-12 13:35 - 2019-10-13 00:23 - 000000000 ____D C:\Users\jenny\Downloads\EaseUS Data Recovery Wizard All Editions 11.8
2021-08-12 13:26 - 2021-08-12 13:27 - 045641008 _____ (EaseUS ) C:\Users\jenny\Downloads\DRW14.2.1_Free.exe
2021-08-12 12:44 - 2021-08-12 12:44 - 000042776 _____ C:\Users\jenny\Downloads\rebuilt.DRW_Free_RSS_new_Installer_20210812.16494.exe
2021-08-12 12:42 - 2021-08-12 12:42 - 000000000 ____D C:\Users\jenny\Desktop\DRW_Free_RSS_new_Installer_20210812.16494
2021-08-12 12:11 - 2021-08-12 12:12 - 032295305 _____ C:\Users\jenny\Downloads\EaseUS Data Recovery Wizard All Editions.zip
2021-08-12 11:30 - 2021-08-12 11:30 - 002069096 _____ C:\Users\jenny\Downloads\DRW_Free_RSS_new_Installer_20210812.16494.exe
2021-08-12 11:18 - 2021-08-12 11:18 - 000000000 ____D C:\ProgramData\SystemAcCrux
2021-08-12 11:16 - 2021-08-12 11:16 - 000000000 ____D C:\Users\jenny\AppData\Roaming\EaseUS
2021-08-12 11:16 - 2021-08-12 11:16 - 000000000 ____D C:\Program Files\EaseUS
2021-08-12 11:15 - 2021-08-12 11:16 - 045873656 _____ (EaseUS ) C:\Users\jenny\Downloads\DRW14.2.1_Trial.exe
2021-08-12 11:14 - 2021-08-12 11:14 - 002069104 _____ C:\Users\jenny\Downloads\DRW_Trial_RSS_new_Installer_20210812.16661.exe
2021-08-06 15:33 - 2021-08-06 15:33 - 000339736 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-08-06 15:33 - 2021-08-06 15:33 - 000215392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-22 14:11 - 2016-11-19 12:10 - 000000000 ____D C:\Users\jenny\AppData\LocalLow\Mozilla
2021-08-22 14:07 - 2019-02-14 09:59 - 000000000 ____D C:\ProgramData\Mozilla
2021-08-22 13:38 - 2016-10-12 15:58 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-22 13:29 - 2019-10-23 21:28 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-08-22 10:12 - 2016-10-12 16:06 - 000000000 ____D C:\Program Files\CCleaner
2021-08-22 04:27 - 2009-07-14 06:45 - 000030112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-08-22 04:27 - 2009-07-14 06:45 - 000030112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-08-21 19:46 - 2018-08-31 19:47 - 000000000 ____D C:\Users\jenny\AppData\Roaming\FileAdvisor
2021-08-21 13:37 - 2015-03-10 00:46 - 000034854 _____ C:\Windows\system32\perfh00C.dat
2021-08-21 13:37 - 2015-03-10 00:46 - 000013988 _____ C:\Windows\system32\perfc00C.dat
2021-08-21 13:37 - 2015-03-10 00:43 - 000741722 _____ C:\Windows\system32\perfh00A.dat
2021-08-21 13:37 - 2015-03-10 00:43 - 000162612 _____ C:\Windows\system32\perfc00A.dat
2021-08-21 13:37 - 2015-03-10 00:41 - 000693474 _____ C:\Windows\system32\perfh007.dat
2021-08-21 13:37 - 2015-03-10 00:41 - 000153254 _____ C:\Windows\system32\perfc007.dat
2021-08-21 13:37 - 2009-07-14 07:13 - 002571616 _____ C:\Windows\system32\PerfStringBackup.INI
2021-08-21 13:37 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-08-21 13:28 - 2021-04-13 19:07 - 000000000 ____D C:\ProgramData\Privax
2021-08-21 13:28 - 2017-11-01 15:52 - 000000000 ____D C:\Users\jenny\AppData\Local\AVAST Software
2021-08-21 13:27 - 2021-05-12 13:05 - 000003882 _____ C:\Windows\system32\Tasks\HMA VPN Update
2021-08-21 13:26 - 2016-10-12 15:54 - 000000000 ____D C:\ProgramData\AVAST Software
2021-08-21 13:25 - 2020-07-09 19:26 - 000122880 ___SH C:\Users\jenny\Desktop\Thumbs.db
2021-08-21 13:25 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-08-20 23:52 - 2018-05-29 08:49 - 000000000 ____D C:\Windows\Minidump
2021-08-20 21:30 - 2019-12-25 14:47 - 000000000 ____D C:\Users\jenny\Desktop\Sauvegarde S7
2021-08-20 15:56 - 2018-09-08 07:17 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-08-20 15:35 - 2017-03-14 11:07 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-08-19 11:44 - 2017-02-20 16:20 - 000000000 ____D C:\Program Files (x86)\Miracle Falcon Box
2021-08-18 21:24 - 2016-09-15 11:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-08-18 18:39 - 2017-08-28 19:59 - 000000000 ____D C:\AdwCleaner
2021-08-18 15:42 - 2020-06-26 03:20 - 000004756 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-18 10:07 - 2016-09-15 12:27 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2021-08-15 13:50 - 2016-10-10 12:34 - 000000000 ____D C:\Users\jenny\Documents\CAF
2021-08-12 18:23 - 2017-08-31 13:50 - 000000000 ____D C:\Users\jenny\AppData\Roaming\vlc
2021-08-12 18:22 - 2020-06-26 03:20 - 000003406 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-12 18:22 - 2019-10-23 21:28 - 000003450 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2021-08-12 18:22 - 2018-08-26 19:46 - 000003594 _____ C:\Windows\system32\Tasks\FileAdvisorUpdate
2021-08-12 18:22 - 2018-08-01 19:18 - 000003044 _____ C:\Windows\system32\Tasks\{5578A107-BC0E-4352-BFFF-D272409A4713}
2021-08-12 18:22 - 2017-08-28 19:34 - 000003050 _____ C:\Windows\system32\Tasks\{5547E0A9-E9C2-47FE-96C0-7E6EDA906126}
2021-08-12 18:22 - 2017-08-24 11:46 - 000003190 _____ C:\Windows\system32\Tasks\{D98E42DB-FC62-4BF8-813D-68D773B072BA}
2021-08-12 18:22 - 2017-08-12 12:58 - 000003502 _____ C:\Windows\system32\Tasks\AdobeAAMUpdater-1.0-jenny-PC-jenny
2021-08-12 18:22 - 2017-03-16 22:31 - 000002928 _____ C:\Windows\system32\Tasks\{DB74345A-2E9D-408B-9467-AE2A8B16C520}
2021-08-12 18:22 - 2017-02-20 17:28 - 000002964 _____ C:\Windows\system32\Tasks\{FECCB868-2086-48CC-B4D6-6977E8126464}
2021-08-12 18:22 - 2017-02-20 17:27 - 000002964 _____ C:\Windows\system32\Tasks\{CE98254C-82FD-4AE8-ABB4-3CD378439DC5}
2021-08-12 18:22 - 2016-10-12 16:06 - 000002790 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-08-12 18:22 - 2016-10-12 15:58 - 000003504 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-12 18:22 - 2016-10-12 15:58 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-08-12 18:22 - 2016-10-12 15:56 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-08-12 18:22 - 2016-10-10 12:42 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-08-06 15:33 - 2020-10-16 09:16 - 000184648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-08-06 15:33 - 2020-04-22 13:46 - 000559816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-08-06 15:33 - 2019-01-18 20:27 - 000250392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-08-06 15:33 - 2019-01-18 20:27 - 000099352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-08-06 15:33 - 2019-01-18 20:27 - 000035720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-08-06 15:33 - 2018-10-20 16:48 - 000041352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-08-06 15:33 - 2017-11-15 11:06 - 000218976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-08-06 15:33 - 2016-10-12 15:56 - 000851704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-08-06 15:33 - 2016-10-12 15:56 - 000471920 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-08-06 15:33 - 2016-10-12 15:56 - 000328568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-08-06 15:33 - 2016-10-12 15:56 - 000108408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-08-06 15:33 - 2016-10-12 15:56 - 000082904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-08-06 15:32 - 2019-01-28 10:46 - 000367640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-08-06 11:01 - 2018-02-21 14:47 - 000000000 ____D C:\Users\jenny\Documents\EURO ASSURANCE
2021-07-29 11:47 - 2017-04-12 23:24 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Fichiers à la racine de certains dossiers ========
2017-08-28 19:35 - 2018-03-06 14:14 - 000523776 _____ () C:\ProgramData\arch.exe
2017-08-28 19:36 - 2017-08-28 19:36 - 000054784 _____ () C:\ProgramData\irecovery.exe
2017-08-28 19:35 - 2018-03-06 14:14 - 000082107 _____ () C:\ProgramData\run.exe
2017-03-16 21:22 - 2017-03-16 21:22 - 000000036 _____ () C:\Users\jenny\AppData\Roaming\iCloudFaker.txt
2018-10-03 09:49 - 2018-10-03 09:49 - 000000000 _____ () C:\Users\jenny\AppData\Local\oobelibMkey.log
2017-08-28 19:35 - 2019-09-07 15:03 - 000000600 _____ () C:\Users\jenny\AppData\Local\PUTTY.RND
2019-12-13 12:32 - 2019-12-13 12:32 - 000000000 _____ () C:\Users\jenny\AppData\Local\{10FAF153-E478-4FEC-9C2B-79BBF1144DE6}
2019-02-24 21:51 - 2019-02-24 21:51 - 000000000 _____ () C:\Users\jenny\AppData\Local\{25B60BD6-1A63-4E18-A9F9-F05AA4D21DCE}
2019-10-22 11:03 - 2019-10-22 11:03 - 000000000 _____ () C:\Users\jenny\AppData\Local\{4612939C-A64A-411F-8EE3-36470306E217}
2019-10-22 11:03 - 2019-10-22 11:03 - 000000000 _____ () C:\Users\jenny\AppData\Local\{6A138A9C-53EC-4F5C-8273-EF60F225FAC9}
2019-12-18 13:49 - 2019-12-18 13:49 - 000000000 _____ () C:\Users\jenny\AppData\Local\{76F2C183-EB14-4DF2-A9CA-C1DCB1C14E2D}
2019-12-18 13:49 - 2019-12-18 13:49 - 000000000 _____ () C:\Users\jenny\AppData\Local\{B34733A2-7367-4958-BF67-7F9694719450}
2019-02-24 21:51 - 2019-02-24 21:51 - 000000000 _____ () C:\Users\jenny\AppData\Local\{CFBBBD80-E002-4F2F-BE44-661C6AA154E3}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2021-08-20 00:12
==================== Fin de FRST.txt ========================